Genel Bakış
INC Ransom, agresif çifte şantaj yapar.
MalwareBazaar İstihbarat Verileri
Hash Örnekleri (İlk 50)
| SHA256 | MD5 | İlk Görülme | Tip | Boyut |
|---|---|---|---|---|
| e16ac4475e24bbe97e50... | 8c00feb53759f3ee... | 2025-08-05 | elf | 79.446 |
| 6cd349eda0fa6c8b274a... | 03dd0efa84d145d7... | 2025-08-05 | elf | 870.920 |
| 63e0d4e861048f581c9e... | 2a404aadbcf8ff04... | 2025-01-24 | elf | 84.400 |
| 7d0c735c8b5bddf57772... | f7b88181d14dc0be... | 2024-11-20 | elf | 84.400 |
| c41ab33986921c812c51... | c6cdd8f334058662... | 2024-06-11 | elf | 84.400 |
IOC Özeti
- Bu analiz 5 adet benzersiz INCRansom örneğini kapsar.
- Toplam 10 hash IOC kayıt altına alındı.
- Kampanya aktivitesi: 2024-06-11 ile 2025-08-05 arasında tespit edildi.
INCRansom — Malware Profile
INC Ransom, agresif çifte şantaj yapar.
Malware Type
Ransomware
Programming Language
C++
C2 Protocol
—
Target Systems
Windows
Capabilities & Behavior
Dosya Şifreleme (AES/RSA)
Gölge Kopya Silme
Yedek Kaldırma
Fidye Notu Oluşturma
Kalıcılık Sağlama
Ağ Paylaşımı Şifreleme
Anti-Analiz Teknikleri
Çift Gasp (Data Leak)
IOC List (20 indicators)
IOC — INCRansom
# SHA256
e16ac4475e24bbe97e50d7940df71079ea2f1dfd1f2bff6a649c09f7503d087c
# SHA256
6cd349eda0fa6c8b274a0920852c68f8b727afea1fdbc69ad183cef05d9cf141
# SHA256
63e0d4e861048f581c9e5c64b28a053eb0023d58eebf2b943868d5f68a67a8b7
# SHA256
7d0c735c8b5bddf577727cdb7d10cb94e2de8d945d2653af6153f9ecb4479384
# SHA256
c41ab33986921c812c51e7a86bd3fd0691f5bba925fae612f1b717afaa2fe0ef
# SHA256
e16ac4475e24bbe97e50d7940df71079ea2f1dfd1f2bff6a649c09f7503d087c
# SHA256
6cd349eda0fa6c8b274a0920852c68f8b727afea1fdbc69ad183cef05d9cf141
# SHA256
63e0d4e861048f581c9e5c64b28a053eb0023d58eebf2b943868d5f68a67a8b7
# SHA256
7d0c735c8b5bddf577727cdb7d10cb94e2de8d945d2653af6153f9ecb4479384
# SHA256
c41ab33986921c812c51e7a86bd3fd0691f5bba925fae612f1b717afaa2fe0ef
# MD5
8c00feb53759f3ee4f3cdce0c70b431c
# MD5
03dd0efa84d145d7d4ed8e240267e5c5
# MD5
2a404aadbcf8ff04b43db1da12a6dd80
# MD5
f7b88181d14dc0becf350844728f67df
# MD5
c6cdd8f3340586620e663236141dc013
# MD5
8c00feb53759f3ee4f3cdce0c70b431c
# MD5
03dd0efa84d145d7d4ed8e240267e5c5
# MD5
2a404aadbcf8ff04b43db1da12a6dd80
# MD5
f7b88181d14dc0becf350844728f67df
# MD5
c6cdd8f3340586620e663236141dc013
| Type | Value | Note |
|---|---|---|
| sha256 | e16ac4475e24bbe97e50d7940df71079ea2f1dfd1f2bff6a649c09f7503d087c | MB:INCRansom |
| sha256 | 6cd349eda0fa6c8b274a0920852c68f8b727afea1fdbc69ad183cef05d9cf141 | MB:INCRansom |
| sha256 | 63e0d4e861048f581c9e5c64b28a053eb0023d58eebf2b943868d5f68a67a8b7 | MB:INCRansom |
| sha256 | 7d0c735c8b5bddf577727cdb7d10cb94e2de8d945d2653af6153f9ecb4479384 | MB:INCRansom |
| sha256 | c41ab33986921c812c51e7a86bd3fd0691f5bba925fae612f1b717afaa2fe0ef | MB:INCRansom |
| sha256 | e16ac4475e24bbe97e50d7940df71079ea2f1dfd1f2bff6a649c09f7503d087c | MB:INCRansom |
| sha256 | 6cd349eda0fa6c8b274a0920852c68f8b727afea1fdbc69ad183cef05d9cf141 | MB:INCRansom |
| sha256 | 63e0d4e861048f581c9e5c64b28a053eb0023d58eebf2b943868d5f68a67a8b7 | MB:INCRansom |
| sha256 | 7d0c735c8b5bddf577727cdb7d10cb94e2de8d945d2653af6153f9ecb4479384 | MB:INCRansom |
| sha256 | c41ab33986921c812c51e7a86bd3fd0691f5bba925fae612f1b717afaa2fe0ef | MB:INCRansom |
| md5 | 8c00feb53759f3ee4f3cdce0c70b431c | MB:INCRansom |
| md5 | 03dd0efa84d145d7d4ed8e240267e5c5 | MB:INCRansom |
| md5 | 2a404aadbcf8ff04b43db1da12a6dd80 | MB:INCRansom |
| md5 | f7b88181d14dc0becf350844728f67df | MB:INCRansom |
| md5 | c6cdd8f3340586620e663236141dc013 | MB:INCRansom |
| md5 | 8c00feb53759f3ee4f3cdce0c70b431c | MB:INCRansom |
| md5 | 03dd0efa84d145d7d4ed8e240267e5c5 | MB:INCRansom |
| md5 | 2a404aadbcf8ff04b43db1da12a6dd80 | MB:INCRansom |
| md5 | f7b88181d14dc0becf350844728f67df | MB:INCRansom |
| md5 | c6cdd8f3340586620e663236141dc013 | MB:INCRansom |